MAYNARD, MA -- Tizor Systems, a leading provider of enterprise data auditing and protection solutions for the data center, today announces the Tizor Discovery Service. This service, which includes a risk assessment scorecard, helps enterprises locate sensitive data assets, identify risks associated with current operating practices and develop plans to mitigate those risks. These activities are key to complying with regulations such as the Payment Card Industry (PCI) Data Security Standard and the Gramm-Leach-Bliley Act (GLBA).
Most companies have sensitive information scattered across the enterprise. Customer information (credit card numbers, Social Security numbers), employee information (SSNs, addresses, salary and medical information) and operational information (financial data, IP) can reside in databases and file shares unprotected. Regulations such as PCI, GLBA, SOX and the Personal Data Privacy Act of 2007 require companies to protect data determined to be private. However, most companies are unable to address this requirement because they don't have the tools to find and classify private data. This lack of visibility into critical data assets leaves companies exposed to significant risks such as data theft, data breaches and unapproved data access.
The Tizor Discovery Service uses Mantra data activity monitoring technology to automate the process of discovering where data is located and how it is being used. Data discovery pinpoints the location of data such as credit card and Social Security numbers stored in both production databases and on file shares in spreadsheets and word documents. Data Activity Monitoring determines the usage patterns and risk profiles for all users and applications that access critical data. The service includes a risk assessment report with an overall risk rating. Tizor consultants work closely with client companies to review the findings of the risk assessment and develop remediation plans.
Each Discovery Service client receives an executive summary and detailed report covering:
--Where PCI, GLBA and other sensitive data is located --Who is accessing critical data assets --What activities privileged users are conducting --Incidents of suspicious user behavior --When failed transactions and other high risk activity is occurring --What steps to take to mitigate or eliminate the risks
The Mantra data activity monitoring system is in use at Fortune 500 companies and is recognized as a leading technology by industry analysts. "Tizor Systems is a Leader in the enterprise database auditing and real-time protection market because it provides strong support for alerting, audit and compliance reporting, performance, policy administration, the discovery of private data. Tizor's is one of the few products that have the ability to audit both relational databases and unstructured data residing on file servers and in mainframe applications. This broad support enables enterprises to implement a unified data auditing and protection solution across the enterprise." (The Forrester Wave: Enterprise Database Auditing and Real-Time Protection, Q4 2007, Forrester Research, Inc., October 2007).